Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
File: QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft (raw, json)
Hash identifier: MPxpVPTMBaedwM2vFRYd+eudOVQEDbGy+v5sctSHeIs=
Subject key identifier: BF:B8:C4:F1:31:1C:1C:3C:C8:3C:D7:E3:00:2D:1D:A8:18:40:28:E2
Authority key identifier: 41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
Certificate issuer: /CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Certificate serial: 01976D3D8FCB6E1507C4B7218141212EF62B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
Manifest number: 151F
Signing time: Sat 14 Jun 2025 07:00:40 +0000
Manifest this update: Sat 14 Jun 2025 07:00:40 +0000
Manifest next update: Sun 15 Jun 2025 07:00:40 +0000
Files and hashes: 1: QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl (hash: I8G9YBuMyiT7ou/wuulJseUB/i8CXlLsUiKtoaGJVlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:8f:cb:6e:15:07:c4:b7:21:81:41:21:2e:f6:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Validity
Not Before: Jun 14 07:00:40 2025 GMT
Not After : Jun 15 07:00:40 2025 GMT
Subject: CN=bfb8c4f1311c1c3cc83cd7e3002d1da8184028e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e7:e4:0b:77:aa:f2:7a:9f:ce:8d:47:9a:28:
5b:5b:88:07:f3:b9:11:d2:6b:60:57:95:57:ed:0b:
80:65:28:a1:cf:10:e1:eb:80:86:7a:31:d7:f7:04:
80:2b:2a:0d:3f:90:58:76:66:9b:8e:50:0b:5e:25:
83:6d:e0:de:b6:bc:47:8c:f5:2c:0b:bd:09:4d:36:
62:62:f2:89:e4:89:5f:fc:93:3f:4b:40:fc:38:02:
e5:56:d9:0f:9e:d7:d9:c5:20:35:06:b0:eb:c0:07:
46:df:5f:5a:36:30:18:17:8c:4e:52:04:ce:bd:56:
bb:e7:8d:f1:c5:ae:8d:8f:f5:6c:04:85:ff:76:50:
89:d1:f4:86:03:cd:a5:21:f8:09:42:19:6a:f5:68:
1b:24:63:b4:8a:1a:b6:62:40:88:f8:d4:c2:60:c8:
9e:7d:85:56:99:90:4c:59:66:eb:ac:a9:eb:f3:7d:
87:d2:4f:11:73:41:d2:f4:98:ae:01:71:9a:e8:42:
16:1a:b1:58:4f:5e:5d:95:ed:af:32:a5:2b:6e:03:
85:ae:79:14:92:12:b9:12:3d:b6:0d:04:f5:bb:4e:
9c:f0:bc:50:0a:5d:ee:26:84:61:d5:19:a2:eb:9f:
66:97:f9:d0:6d:fe:a8:3d:db:cf:6e:9e:2c:45:30:
6b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B8:C4:F1:31:1C:1C:3C:C8:3C:D7:E3:00:2D:1D:A8:18:40:28:E2
X509v3 Authority Key Identifier:
keyid:41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:22:5a:d8:33:6b:dc:c5:74:6c:5d:67:29:d5:5f:74:83:23:
40:e5:27:2a:00:6b:aa:04:75:70:73:3b:01:a9:fc:54:e6:ee:
e5:dd:8b:19:ba:d6:52:51:6c:38:76:c0:f9:7f:64:a5:3e:21:
b0:63:5d:9c:da:0a:d1:2a:41:60:b1:fa:0c:8a:87:2b:36:e8:
fc:b0:8d:f9:30:fa:81:f2:bc:84:38:f1:52:6e:de:15:47:69:
75:9b:38:ca:e7:28:96:a9:75:d9:52:c3:05:12:3f:a5:99:43:
6e:89:22:06:41:5e:f7:77:a3:09:4d:49:2e:15:fe:3a:5e:db:
9e:96:85:89:f0:aa:f7:5c:04:df:23:d8:45:a9:d6:47:d6:05:
0b:96:7d:0b:26:57:51:02:a8:70:17:3c:77:5e:26:82:2d:ab:
ab:34:e3:10:88:a5:ed:78:ed:5c:7d:c2:1c:0c:de:26:08:37:
dd:19:b3:1e:aa:cc:db:64:9e:c4:0f:01:4a:8a:0e:63:6c:0e:
d5:16:a0:3d:5b:8f:b5:d1:27:f9:35:46:8d:c5:fe:33:65:4a:
4b:56:90:e3:db:8f:bc:f5:34:c9:7c:c9:0e:2b:c0:90:b3:eb:
c8:09:b1:3c:85:ff:90:89:28:f5:9a:f2:ee:c2:fc:b4:96:df:
16:a6:ea:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:57:39 2025 by rpki-client